News list for " Information Security"
Slow Mist Technology Chief Information Security Officer 23pds said on the X platform that Bybit attackers took away safe owner privileges in a forged signature attack. It is speculated that more than one macOS or Windows computer must have been charged, and the attacker may have stayed on the intranet for a while, able to monitor internal chat, transfer time and other information.
Slow Mist Technology Chief Information Security Officer 23pds issued a warning that the latest version of Phantom wallet may have security bugs, and the victim has explained the risk of Phantom Profile: when a user imports a mnemonic from an unknown source, if the mnemonic has been associated with Phantom Profile, the wallet will automatically log in to the account system, putting the user's assets at risk of theft. According to the victim's description, when a user who does not open the Phantom...
In response to 23pds, the chief information security officer of Slow Mist Technology, reminding the trading tool DeBot to upgrade the security level, the DeBot team responded that the emergency upgrade has been completed as soon as possible. Previously reported, the SlowMist CISO said it recommended that the trading tool Debot upgrade its security level.
Slow Mist Technology's chief information security officer 23pds said on the X platform that the private key of the trading tool Debot was directly "streaking" in the data package, and it was recommended to upgrade the security level.
On January 17, 23pds, the chief information security officer of Slow Mist Technology, said on the X platform that it had recently detected a data breach of a third-party service used by a leading trading platform, involving a large amount of employee information, including email, password and other sensitive data. The relevant situation has been synchronized to the relevant parties for processing. The end of the year is approaching, reminding everyone to be vigilant and pay attention to the safe...
Slow Mist Chief Information Security Officer @im23pds posted a warning on social media, recently monitoring that the Lazarus organization no longer relies solely on video conferencing tools such as Zoom and Meeting as a means of attack, but instead turns to Trojan software disguised as the Willo-Talent recruitment video platform to trick recruiters into downloading and running malicious programs.
SlowMist Chief Information Security Officer @im23pds posted a warning on social media that the email address leaked in 2024 due to the attack on the OpenSea email service provider has been fully disclosed after multiple broadcasts. Please be aware of the relevant risks and be alert to phishing emails and other potential cyber attacks, including email addresses including CZ. Previously reported, on June 30, 2024, according to OpenSea official news, the NFT trading market disclosed its email deliv...
The National Network and Information Security Information Reporting Center has discovered a number of foreign malicious websites and malicious IPs, which are used by foreign hacker organizations to continuously launch cyber attacks against China and other countries. These malicious websites and IPs are closely related to a specific Trojan or Trojan program control terminal. A malicious address is associated with a Nanocore virus family sample, which can be expanded to achieve various malicious f...
Slow Mist Chief Information Security Officer 23pds said on the X platform that in the past two months, North Korean hackers have continued to impersonate Hack VC, SevenX Ventures and other institutions or individuals to commit conference fraud. Please be vigilant against the risks.
According to the Department of Justice, Israeli national Rostislav Panev allegedly worked as a developer and coder for the LockBit ransomware group since around January 2022, and received about $230,000 in cryptocurrency transfers as part of his work.
SlowMist Chief Information Security Officer 23pds tweeted that the cumulative value of cryptocurrencies stolen between January 2024 and July 2024 has reached $1.58 billion, which is about 84.4% higher than the value stolen during the same period in 2023. In 2024, private key leakage accounted for the largest proportion of stolen cryptocurrencies, reaching 43.8%.
Slow Mist Technology Chief Information Security Officer 23pds issued a statement saying that 1inch disclosed that it discovered a security bugs on December 9, and the attacker fraudulently obtained access to the private key belonging to the owner of the 1inch Labs parser smart contract.
SlowMist Chief Information Security Officer 23pds said on the X platform that all statistics on the DEXX theft have been updated so far. Note that if you are a victim: 1. Please go to the form to check whether your stolen address exists; 2. If you have transferred the balance by yourself, please go to the form again to check whether your own address is regarded as a "hacker" address record.
SlowMist Chief Information Security Officer 23pds posted, Please be aware of poison attacks, users using @solana/web3.js, version 1.95.6 and 1.95.7 can be attacked by thieves who disclose private keys. If your product is using these versions, please upgrade to 1.95.8 (1.95.5 not affected).
SlowMist Chief Information Security Officer 23pds posted that Okta allows any username longer than 52 characters to bypass login! Also according to the Okta announcement from identity and access management software provider, on October 30, a vulnerability was discovered internally when generating a cache key for AD/LDAP DelAuth. The Bcrypt algorithm is used to generate a cache key, where we hash a combined string of userId + username + password. Under certain conditions, this can allow users to ...
7x24 Newsflash
Hot News
